Show Table of Contents
17.2. Delegating Host Management
Hosts are delegated authority over other hosts through the
host-add-managedby utility. This creates a managedby entry. Once the managedby entry is created, then the host can retrieve a keytab for the host over which t has delegated authority.
- Log in as the admin user.
[root@server ~]# kinit admin
- Add the
managedbyentry. For example, this delegates authority over client2 to client1.[root@server ~]# ipa host-add-managedby client2.example.com --hosts=client1.example.com
- Obtain a ticket as the host
client1:[root@client1 ~]# kinit -kt /etc/krb5.keytab host/client1.example.com
- Retrieve a keytab for
client2:[root@client1 ~]# ipa-getkeytab -s server.example.com -k /tmp/client2.keytab -p host/client2.example.com Keytab successfully retrieved and stored in: /tmp/client2.keytab
Where did the comment section go?
Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.